CVE-2021-3811
adminlte is vulnerable to Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’)
Source: CVE-2021-3811
[월:] 2021년 09월
CVE-2021-3803
CVE-2021-3803
nth-check is vulnerable to Inefficient Regular Expression Complexity
Source: CVE-2021-3803
CVE-2021-3812
CVE-2021-3812
adminlte is vulnerable to Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’)
Source: CVE-2021-3812
CVE-2021-30261
CVE-2021-30261
Possible integer and heap overflow due to lack of input command size validation while handling beacon template update command from HLOS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Source: CVE-2021-30261
CVE-2021-1939
CVE-2021-1939
Null pointer dereference occurs due to improper validation when the preemption feature enablement is toggled in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables
Source: CVE-2021-1939
CVE-2021-1947
CVE-2021-1947
Use-after-free vulnerability in kernel graphics driver because of storing an invalid pointer in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
Source: CVE-2021-1947
CVE-2021-1976
CVE-2021-1976
A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
Source: CVE-2021-1976
CVE-2021-3805
CVE-2021-3805
object-path is vulnerable to Improperly Controlled Modification of Object Prototype Attributes (‘Prototype Pollution’)
Source: CVE-2021-3805
CVE-2021-20828
CVE-2021-20828
Cross-site scripting vulnerability in Order Status Batch Change Plug-in (for EC-CUBE 3.0 series) all versions allows a remote attacker to inject an arbitrary script via unspecified vectors.
Source: CVE-2021-20828
CVE-2021-20791
CVE-2021-20791
Improper access control vulnerability in RevoWorks Browser 2.1.230 and earlier allows an attacker to bypass access restriction and to exchange unauthorized files between the local environment and the isolated environment or settings of the web browser via unspecified vectors.
Source: CVE-2021-20791